Description
An issue was discovered in Envoy through 1.71.1. There is a remotely exploitable NULL pointer dereference and crash in TLS when an unknown TLS alert code is received.
Remediation
References
Related Vulnerabilities
WordPress 5.7.x PHP Object Injection (5.7 - 5.7.1)
WordPress Plugin Import all XML, CSV & TXT into WordPress Security Bypass (6.4.1)
WordPress Plugin Banner Garden Multiple Cross-Site Scripting Vulnerabilities (0.1.3)
Oracle JRE CVE-2013-5788 Vulnerability (CVE-2013-5788)
WordPress Plugin WP Inventory Manager Cross-Site Scripting (1.7.8)